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Abstract 

We prove the strong normalization of full classical natural deduction (i.e. 
with conjunction, disjunction and permutative conversions) by using a trans- 
lation into the simply typed A/i-calculus. We also extend Mendler's result on 
recursive equations to this system. 

1 Introduction 

It is well known that, when the underlying logic is the classical one (i.e. the ab- 
surdity rule is allowed) the connectives V and A are redundant (they can be coded 
by using — > and _L). From a logical point of view, considering the full logic is thus 
somehow useless. However, from the computer science point of view, considering 
the full logic is interesting because, by the so-called Curry-Howard correspondence, 
formulas can be seen as types for functional programming languages and correct 
programs can be extracted from proofs. The connectives A and V have a functional 
counter-part (A corresponds to a product and V to a co-product, i.e. a case of) and 
it is thus useful to have them as primitive. 

In this paper, we study the typed A/i^ AV -calculus. This calculus, introduced by 
de Groote in [7], is an extension of Parigot's A/i-calculus. It is the computational 
counterpart of classical natural deduction with — >, A and V. Three notions of con- 
versions are necessary in order to have the sub-formula property : logical, classical 
and permutative conversions. 

The proofs of the strong normalization of the cut-elimination procedure for 
the full classical logic are quite recent and three kinds of proofs are given in the 
literature. 

Proofs by CPS-translation. In [7] de Groote also gave a proof of the strong 
normalization of the typed A/i^ AV -calculus using a CPS-translation into the simply 
typed A-calculus i.e. the implicative intuitionistic logic but his proof contains an 
error as Matthes pointed out in [8]. Nakazawa and Tatsuta corrected de Groote's 
proof in [12] by using the notion of augmentations. 

Syntactical proofs. We gave in [4] a direct and syntactical proof of strong norma- 
lization. The proof is based on a substitution lemma which stipulates that replacing 
in a strongly normalizable deduction an hypothesis by another strongly normali- 
zable deduction gives a strongly normalizable deduction. The proof uses a technical 
lemma concerning commutative reductions. But, though the idea of the proof of 
this lemma (as given in [4]) works, it is not complete and (as pointed out by Matthes 
in a private communication) it also contains some errors. 

Semantical proofs. K. Saber and the second author gave in [13] a semantical 
proof of this result by using the notion of saturated sets. This proof is a general- 
ization of Parigot's strong normalization result of the A/x-calculus with the types 
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of Girard's system T by using reducibility candidates. This proof uses the techni- 
cal lemma of [4] concerning commutative reductions. In [9] and [17], R. Matthes 
and Tastuta give another semantical proofs by using a (more complex) concept of 
saturated sets. 

This paper presents a new proof of the strong normalization of the simply typed 
A/j^ AV -calculus. This proof is formalizable in Peano first order arithmetic and does 
not need any complex lemma. It is obtained by giving a translation of this calculus 
into the A^.-calculus. The coding of A and V in classical logic is the usual one but, 
as far as we know, the fact that this coding behaves correctly with the computation, 
via the Curry-Howard correspondence, has never been analyzed. This proof is much 
simpler than the existing ones 1 . 

It also presents a new result. Mendler [11] has shown that strong normalization is 
preserved if, on types, we allow some equations satisfying natural (and necessary) 
conditions. Mendler's result concerned the implicative fragment of intuitionistic 
logic. By using the previous translation, we extend here this result to full classical 
logic . 

The paper is organized as follows. Section 2 gives the various systems for 
which we prove the strong normalization. Section 6 gives the translation of the 
A^ AV -calculus into the A/z-calculus and section 7 extends Mendler's theorem to 
the A/i^ AV -calculus. For a first reading, sections 3, 4 and 5 may be skipped. They 
have been added to have complete proofs of the other results. Section 3 contains 
the proof, by the first author, of the the strong normalization of the simply typed 
A-calculus. Section 4 gives a translation of the A/x-calculus into the A-calculus and 
section 5 gives some well known properties of the A^i-calculus. Finally, the appendix 
gives a detailed proof of a lemma that needs a long but easy case analysis. 

2 The systems 

Definition 2.1 Let V and W be disjoint sets of variables. 

1. The set of \-terms is defined by the following grammar 

M := V | XV.M | (M M) 

2. The set of X/i-terms is defined by the following grammar 

M'~V\ XV.M' | (M' M') | fiW.M' | (W M') 

3. The set of X^ AV -terms is defined by the following grammar 

M" ::= V | XV.M" \ (M" £) \ (M",M") \ w x M" \ u 2 M" \ ^W.M" \ (W M") 

£ ::=M" | tti | tt 2 | [V.M",V.M"\ 

Note that, for the A/i-calculus, we have adopted here the so-called de Groote 
calculus which is the extension of Parigot's calculus where the distinction between 
named and un-named terms is forgotten. In this calculus, [ia is not necessarily 
followed by [/?]. We also write (a M) instead of [a]M. 

1 Recently, we have been aware of a paper by Wojdyga [18] who uses the same kind of translations 
but where all the atomic types are collapsed to _L. Our translation allows us to extend trivially 
Mendler's result whereas the one of Wojdyga, of course, does not. 
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Definition 2.2 1. The reduction rule for the X-calculus is the (3 -rule. 

(Xx.M N) > M[x := N] 

2. The reduction rules for the X^i-calculus are the (i-rule and the /i-rule 

(pa.M N) t> M na.M[{a L) := (a (L N))} 

3. The reduction rules for the A/i^ AV -calculus are those of the Xji-calculus to- 
gether with the following rules 

((M U M 2 ) ir t )>M t 
(lu,M [x 1 .N 1 ,x 2 .N 2 ])>N i [x i :=M] 
(M [x 1 .N 1 ,x 2 .N 2 ] e)>(M [zi.(iVi s),x 2 .(N 2 e)}) 
[pa.M e) > fjux.M[{a N) := (a (N e))] 

Definition 2.3 Let A be a set of atomic constants. 

1. The set T of types is defined by the following grammar 

T ::= AU{±} \ T^T 

2. The set T' of types is defined by the following grammar 

T' ::= Ali{±} | T'-fT 7 | T' AT' \ T' V T' 
As usual ->A is an abbreviation for A — > _L. 

Definition 2.4 1. A X-context is a set of declarations of the form x : A where 
x G V , A G T and where a variable may occur at most once. 

2. A Xfi-context is a set of declarations of the form x : A or a : where i£V, 
a € W, A,BeT and where a variable may occur at most once. 

3. A A/U^ AV -context is a set of declarations of the form x : A or a : ->B where 
x eV, a £ W, A,B ef and where a variable may occur at most once. 

Definition 2.5 1. The simply typed X-calculus (denoted S) is defined by the 
following typing rules where Y is a X-context, 

T,x : A\- M : B 

■ ax 



Y,x:Ahx:A Th Xx.M : A -> B 

T \- M : A ^ B r h N : A 



Y h (M N) : B 

2. The simply typed X[i-calculus (denoted S^) is obtained by adding to the pre- 
vious rules (where Y now is a Xfi-context) the following rules. 

r, a : -<A \- M : A T, a : -*A hM:l 

- -L« tt ; -Le 



r, a : ->A h (a M) : _L Y h /xa.M : 4 

5. TTie simply typed X^ AV -calculus (denoted S^ AV j is defined by adding to the 
previous rules (where Y now is a A/i^ AV -context) the following rules. 
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Th M :A 1 r h N : A 2 T h M : A 1 A A 2 

T h (M, N) : A\ A A 2 A * V h (M tt,) : A, Ae 

r h M : A,- 
T h WjM : At V A 2 V * 

r h M : Ai V A 2 T,xi : Ai \- Ni : C T,x 2 : A 2 h 7V 2 ■ C 
r h (M [xi.W'i, 12.^2]) :C 



^. If m is a congruence on T (resp. T'), we define the systems S~, (resp. S~, 
S~ Ay ) as the system S (resp. , 5^ AV J where we have added the following 
typing rule. 

r h M : A A^B ^ 
r h M : B ~ 

Notation 2.1 • We will denote by size(M) the complexity of the term M. 

• Let P be a finite (possibly empty) sequence of terms and M be a term. We 
denote by (M P) the term (M Pi ... P n ) where ~P = P x , ...,P n . 

• In the rest of the paper > will represent the reduction determined by all the 
rules of the corresponding calculus. 

• If we want to consider only some of the rules we will mention them as a 
subscript of>. For example, in the \^ Ay -calculus, Mo^ N means that M 
reduces to N either by the (3-rule or by the [i-rule. 

• As usual, >* (resp. denotes the symmetric and transitive closure of > r 
(resp. the transitive closure of\> r ). We denote Mt>],N iff M — N or M t> r N . 

• A term M is strongly normalizable for a reduction \> r ( denoted as M G SN r ) if 
there is no infinite sequence of reductions > r starting from M. For M G SN r , 
we denote by rj r (M) the length of the longest reduction of M. 

• If M >* N , we denote by lg{M l>* N) the number of steps in the reduction 
Mt>* N. If M>* N, we denote by lg r (M >* N) the number of \> r steps of the 
reduction in M t>* N . 



3 Strong normalization of S 

This section gives a simple proof (due to the first author) of the strong normalization 
of the simply typed A-calculus. 

Lemma 3.1 Let M, N,OeM. If M, N, O G SNp and (M N O) £ SN , then 
(Mi[x := N] O) SNp for some Mi such that M >* As. Mi. 

Proof Since M,N,~0 G SNp, the infinite reduction of T = (M N O) looks like: 
Tt>*p (Xx.Mx Nidi) Op (Mi [a; := Nx] o[) t>J 3 . . .. The result immediately follows 
from the fact that (Mi [a; := N] O) >* p (Mi [a; := iVi] ol). □ 
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Lemma 3.2 If M,N G SNp are typed X-terms, then M[x := N] G SNp. 
Proof By induction on (type(N),r)p(M), size(M)) where type(N) is the com- 
plexity of the type of N. The cases M — Ax. Mi and M = (y O) for y ^ x are 
trivial. 

• M = (Xy.P Q O). By the induction hypothesis, P[x := N], Q[x := N] and 
0[x :— N] are in SNp. By lemma 3.1 it is enough to show that (P[x := 
N][y := Q[x := N}} 0[x := N]) = M'[x := N] G SW^ where M' = (P[y := 

Q] O). But rjp(M') < rjp(M) and the result follows from the induction 
hypothesis. 

• M — (x P O). By the induction hypothesis, P\ — P[x := N] and Oi = 
0[x := N] are in SNp. By lemma 3.1 it is enough to show that if N >^ 

Xy.Ni then Mi = (7Vi[y := Pi] ol) G SiV^. By the induction hypothesis 
(since type{P\) < type(N)) N\[y := Pi] G SWg and thus, by the induction 

hypothesis (since Mi = (z 0\ ) [z := iVi[y := Pi]] and type(N\) < type(N)) 
Mi G SA^. 

□ 



Theorem 3.1 The simply typed X-calculus is strongly normalizing. 

Proof By induction on M. The cases M = x or M = Ax.P are trivial. If 
M = (N P) = (z P)[z := N] this follows from lemma 3.2 and the induction 
hypothesis. □ 



4 A translation of the A^-calculus into the A-calculus 

We give here a translation of the simply typed A^i-calculus into the simply typed A- 
calculus. This translation is a simplified version of Parigot's translation in [15]. His 
translation uses both a translation of types (by replacing each atomic formula A by 
— i— iA) and a translation of terms. But it is known that, in the implicative fragment 
of propositional logic, it is enough to add -i-i in front of the rightmost variable. 
The translation we have chosen consists in decomposing the formulas (by using the 
terms Ta) until the rightmost variable is found and then using the constants cx of 
type -i-iX — ► X. With such a translation the type does not change. 

Since the translation of a term of the form [ia.M uses the type of a, a formal 
presentation of this translation would need the use of A-calculus and A/z-calculus 
a la Church. For simplicity of notations we have kept a presentation a la Curry, 
mentioning the types only when it is necessary. 

We extend the system S by adding, for each propositional variable X, a constant 
cx- When the constants that occur in a term M are cx l: ■■■,cx n , the notation 
r h S c M : A will mean T, c Xl ■ ^X x -> X 1} c Xn ■ ->->X n ->• X n h s M : A. 

Definition 4.1 For every A 6 7, we define a X-term Ta as follows: 

• Tj_ = Xx.(x Xy.y) 

• T x =c x 

• Ta^b = Xx.Xy.(T B Xu.(x Xv.(u (v y)))) 
Lemma 4.1 For every A G T, h^c Ta ■ -i->A — ► A. 

Proof By induction on A. □ 
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Definition 4.2 1. We associate to each ^-variable a of type -*A a X-variable 
x a of type -i A. 

2. A typed \\i-term M is translated into an \-term M° as follows: 

• = x 

• {Xx.M} = Xx.M 

• {(M N)}° = (M° N°) 

• {fia.MY = (T A \Xa.M*) if the type of a is -iA 

• {(a M)Y = (x a M°) 

Lemma 4.2 1. M°[a; := N°] = {M[x := N}}°. 

2. M°[x a := Xv.(x a (v N°))} >* {M[(a L) := (a (L N))}}«. 

Proof By induction on M. The first point is immediate. For the second, 
the only interesting case is M = (a K). Then, M°[i„ := Xv.(x a (v N°))] = 
(Xv.(x a (v N°)) K°[x a := Xv.{x a (v N ))}) > p (x a (K°[x a := Xv.(x a (v N°))} N )>* 
(x a ({K[(a L) := (a (L N))]}* N«) = {M[(a L) := (a (L N))}}«. □ 

Lemma 4.3 Let M G M' . 

1. If M >p N, then M° >+ N*. 

2. If M >„ N, then M° >+ N*. 

3. IfM>* fflt N, then M 4 >* N° and lg{M° N*) > lg(M >^ N). 
Proof By induction on M. (1) is immediate. (2) is as follows. 

(fia^ A " B lM N) fia^ B .M[(a^ A ^ B ^ L) := (cT B (L N))} is translated by 
{(iia.M N)}° = (T A ^ B Xx a .M° N°) >+ (T B Xu.M°[x a := Xv.(u (v N°))] = 
(T B Xx a .M°[x a := Xv.(x a (v N°))] >* (T B Xx a .{M[(a L) := (a (L N))}}°) - 
{^a.M[{a L) := {a (L N))}} . 

(3) follows immediately from (1) and (2). □ 
Lemma 4.4 Let M G M' . If M° G SN , then M G SN^. 

Proof Let n = ^(M ) + 1. If M SNp^, there is N such that M N and 
lg(M>^N) > n. Thus, by lemma 4.3, M°>*7V° and lg(M°t>l N°) > lg(Mt>^N) > 
77 /3 (M°) + 1. This contradicts the definition of n /3 (M <> ). □ 

Lemma 4.5 IfT \- s » M : A, then T° h 5 c M° : A where T° is obtained from T by 
replacing a : -*B by x a : ->B. 

Proof By induction on the typing T M : A. Use lemma 4.1. □ 

Theorem 4.1 The simply typed X^i-calculus is strongly normalizing for t>p^. 
Proof A consequence of lemmas 4.4, 4.5 and theorem 3.1. □ 
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5 Some classical results on the A^-calculus 



The translation given in the next section needs the addition, to the A^-calculus, of 
the following reductions rules. 

(J3 fia.M) > p M[a := (3} 
fia.(a M) >g M if a £ Fv(M) 

We will need some classical results about these new rules. For the paper to 
remain self-contained, we also have added their proofs. The reader who already 
knows these results or is only interested by the results of the next section may skip 
this part. 



5.1 Adding \> pe does not change SN 

Theorem 5.1 Let M G M' be such that M 6 SNp^. Then M € SN fipp g. 

Proof This follows from the fact that > p g can be postponed (theorem 5.2 below) 
and that t> p g is strongly normalizing (lemma 5.1 below). □ 

Lemma 5.1 The reduction > pd is strongly normalizing. 

Proof The reduction t> p e decreases the size. □ 

Theorem 5.2 Let M, N be such that M>£ w g N and lg fjp (M >* jpp6 N) > 1. Then 
M >+ M P >* g N for some P. 

This is proved in two steps. First we show that the [>e-reduction can be post- 
poned w.r.t. to >pnp (theorem 5.3). Then we show that the o p -rule can be postponed 
w.r.t. the remaining rules (theorem 5.4). 

Definition 5.1 Say that Pt-^P' if P = (jiaM N),P' = fiaM[{a L] := (a (L N))] 
and a occurs at most once in M 

Lemma 5.2 1. Assume M >g P frp^ N . Then either M >p p Q>g N for some Q 
or M t> po R t>fj p Q>g N for some R, Q. 

2. Let Mt> g P> pa N. Then either M > Pa Q>eN for some Q or M > po Rt> pa Q> g N 
for some R, Q. 

3. LetM> P>pN. Then M t> p Q> e N. 

Proof By induction on M. □ 

Lemma 5.3 Let M>* e P\> Po N . Then, M>* o Q>^ N for some Q such that lg(Mb>g 
P) = lg(Q>* g N). 

Proof By induction on lg(M \>* e P). □ 

Theorem 5.3 Let M >* g P t> Ppp N. Then, M >+^ p Q >* e N for some Q. 

Proof By induction on lg(M >g P). □ 

Lemma 5.4 1. Let M > p P >@ N . Then M >@ Q >* N for some Q . 

2. Let M, M', N be such that M> p M' and a £ Fv(N). Then either M[(a L] := 
(a (L N))} > p M'[(a L] := (a (L N))] or M[{a L] := (a (L N))] > p P > p 
M'[(a L] := (a (L N))] for some P. 

3. Let M t> p P t> p N. Then M > p Q>*N for some Q. 

Proof By induction on M. □ 
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Theorem 5.4 Let M >* P N. Then M > /3fl Q>*N for some Q. 
Proof By induction on lg(M >* P). 



□ 



5.2 Commutation lemmas 

The goal of this section is lemma 5.7 below. Its proof necessitates some preliminary 
lemmas. 

Lemma 5.5 1. If M> p P and M > p g Q, then P = Q or P> pB N and Q > p N 
for some N. 

2. If M \> p P and M !>p p Q, then P > /3fl N and Q >* N for some N. 
Proof By simple case analysis. □ 

Lemma 5.6 1. If M >* P and M > pd i Q, then P > pd i N and Q>*N for some 
N. 

2. IfM>*P and M t>* g Q, then P >* e N and Q >* N for some N. 

3. If M>*P and M t>p p Q, then P t>p p N and Q >* N for some N. 
Proof 

1. By induction on i] p (M). Use (1) of lemma 5.5. 

2. By induction on lg(M t>* g Q). Use (1). 

3. By induction on i] p (M). Use (2) of lemma 5.5. 

□ 

Lemma 5.7 If M >* P and M t>*p pp g Q, then P >^ pe N, Q>*N for some N and 
l9fJ»(Pt>; pp eN) = l9^(M>} jppf) Q). 

Proof By induction on lg Pp {M >* 0fipg Q). If M >* Pfip6 M 1 M 2 >* g Q, then, by 
induction hypothesis, P>* Plxpe N u Mi t>* Ni and lg^{P>*^ pe Ni) = lg „{M>* M{). 
By (3) of lemma 5.6, N x > fjp N 2 and M 2 >* N 2 for some N 2 . And finally, by (2) 
of lemma 5.6, N 2 o* g N and Q >* N for some N. Thus P >* Mp() N, Q >* N and 
l90n(P>*^ p eN) = lg^(M>* 0fipe Q). " □ 

6 A translation of the A^i^ AV -calculus into the Xfi- 
calculus 

We code A and V by their usual equivalent (using — > and _L) in classical logic. 

Definition 6.1 We define the translation A e T of a type A e T' by induction 
on A as follows. 

• {A} = A for AeAU{±} 

. {A 1 - A 2 }° = A\ -f A\ 

. {A\ A A 2 }° = — > (A 2 — > _L)) 

. {Ai V A 2 }° = - (^A° 2 -» _L) 

Lemma 6.1 For every A e T' , A° is classically equivalent to A. 

Proof By induction on A. □ 
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Definition 6.2 Let ip a special ^-variable. A term M G M" is translated into a 
Xfi-term M° as follows: 

• {x}° = x 

• {\x.M}° = \x.M° 

• {(M N)}° = (M° AT°) 

• {na.M}° = na.M° 

• {(aM)}° = (aM°) 

• {(M,N)}° = \x.(x M° N°) 

• {M-Ki}° = na.(ip (M° Ax1.Ax2.yu7. (a Xi))) where 7 is a fresh variable 

• {M [xi.Ni,x 2 -N 2 }} = fm.{(p (M° Xx 1 ./j,-y.(a N%) Xx 2 .^/.(a AT°))) where 7 
is a fresh variable 

• {u t M}° = Xx 1 .\x 2 .{x l M°) 
Remarks 

• The introduction of the free variable ip in the definition of {M [x1.ATijX2.iV2]} 
and {MiTi} is not necessary for lemma 6.3. The reason of this introduction 
is that, otherwise, to simulate the reductions of the A / u _>AV -calculus we would 
have to introduce new reductions rules for the A/x-calculus and thus to prove 
SAT of this extension whereas, using <p, the simulation is done with the usual 
rules of the A/x-calculus. 

• There is another way of coding A and V by using intuitionistic second order 
logic. 

- {At A A 2 }° = MX{{Al -> (A° 2 -> X)) - X) 

- {At V A 2 }° = VX((Al -^X)^ ((A° 2 -^X)^ X)) 

The translation of {{M, A^}} and {u)iM}° are the same but the translation of 
{M-KiY will be (M° Axi.Ax 2 .x 4 ) and the one of {M [x 1 .N 1 ,x 2 .N 2 }}° would 
be (M° Xxi.N^ Xx 2 .N2). But it is easily checked that the permutative con- 
versions are not correctly simulated by this translation whereas, in our trans- 
lation, they are. 

• Finally note that, as given in definition 2.2, the reduction rules for the A/i^ AV - 
calculus do not include > p and >g. We could have added them and the given 
translation would have worked in a similar way. We decided not to do so 
(although these rules were already considered by Parigot) because they, usu- 
ally, are not included neither in the A/x-calculus nor in the A/i^ AV -calculus. 
Moreover some of the lemma given below would need a bit more complex 
statement. 

Lemma 6.2 1. {M[x := N}}° = M°[x := N }. 

2. {M[(a N) := (a (N e))]}° = M°[(a N°) := (a {(N e)} )}. 
Proof By induction on M. □ 

Lemma 6.3 IfT h 5 ^Av M : A, then T° \- s * M° : A° where T° is obtained from 
T by replacing all the types by their translations and by declaring ip of type -i_L. 
Proof By induction on a derivation of T I~s^av M : A. □ 
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Lemma 6.4 Let M E M" . If M>N, then there is P e M' such that M° >* ^ P, 
N°>* p P andlg^(M°>^ pe P)>l. 

Proof By case analysis. The details are given in the appendix, section 8. □ 

Lemma 6.5 Let M G M" . If M>* N , then there is P G M' such that M°t>* pppfj P, 
N° >; P and lg^(M° >^ p8 P) > lg(M >* N). 

Proof By induction on lg(M\>* N). If M >* L> N, then, by induction hypothesis, 
there is Q G M' such that M°>* pppfj Q, L°t>*Q and lg 0ft {M° >^ pe Q) > lg{M\>*L). 
By lemma 6.4, there is a R E M' such that L° >^„„ e R, N° t>* R and lgp p {L° o*p ppg 
R) > 1. Then, by lemma 5.7, there is a P E M' such that Q >* 0IJ/p0 P, R>* p P 
and lg p „{Q >* Ppf>g P) > lg^(L° >^ pg R) > 1. Thus M° >^ p , P, iV° >J P and 

Lemma 6.6 Let M e M" be such that M° E SN fi ^ pg . Then M e SN . 

Proof Since M° E SNp ppg , let n be the maximum of >/3 M steps in the reductions 
of M°. If M <^ SN, by lemma 5.1, let N be such that M >* N and Igp^M >* iV) > 
n + 1. By lemma 6.5, there is P such that M° >* 0fip6 P and Igp^M >J jpp8 P) > 
lgpn{M >* iV) > n + 1. Contradiction. ' □ 

Theorem 6.1 Every typed A/i^ AV -term is strongly normalizable. 

Proof A consequence of theorems 4.1, 5.1 and lemmas 6.6, 6.3. □ 



7 Recursive equations on types 

We study here systems where equations on types are allowed. These types are 
usually called recursive types. The subject reduction and the decidability of type 
assignment are preserved but the strong normalization may be lost. For example, 
with the equation X = X — > T, the term (A A) where A — Xx.(xx) is typable but 
is not strongly normalizing. With the equation X = X — > X, every term can be 
typed. By making some natural assumptions on the recursive equations the strong 
normalization can be preserved. The simplest condition is to accept the equation 
X = F (where F is a type containing the variable X) only when the variable X 
is positive in F. For a set {Xi — Fi / i E 1} of mutually recursive equations, 
Mendler [10] has given a very simple and natural condition that ensures the strong 
normalization of the system. He also showed that the given condition is necessary 
to have the strong normalization. 

Mendler's result concerns the implicative fragment of intuitionistic logic. We 
extend here his result to full classical logic. We now assume A contains a specified 
subset X = {Xi I i E I}. 

Definition 7.1 Let X E X. We define the subsetsP+(X) andp-(X) ofT (resp. 
T' ) as follows. 

• X g V+{X) 

• If AG (X -{X})UA, then AET+(X)nV-(X). 

• IfAEV-(X) andBEV+{X), then A -f B G V+ (X) and B -► A G V~ (X) . 

• IfA,B G V+(X), then AAB,BV AeV+{X). 

• IfA,B<= P-(X), then AAB,BV Ae V~{X). 

Definition 7.2 • Let T = {Fi / i E 1} be a set of types in T (resp. in T' ). 
The congruence w generated by T in T (resp. in T' ) is the least congruence 
such that Xi w Fi for each i E I. 

• We say that w is good if, for each X G X, if X w A, then A G V + (X). 
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7.1 Strong normalization of 5- 

Let « be the congruence generated by a set J 7 of types of T. 

Theorem 7.1 (Mendler) J/« is good, then the system S~ is strongly normaliz- 
ing. 

Proof See [10] for the original proof and [5] for an arithmetical one. □ 
Lemma 7.1 //rh a M : A, then T° h 5& If : A. 

Proof By induction on the typing T \~ S £ M : A. □ 

Theorem 7.2 If k, is good, then the system S~ is strongly normalizing. 

Proof Let M G M! be a term typable in <S~. By lemma 4.4, it is enough to 
show that M° G SNp. This follows immediately from theorem 7.1 and lemma 7.1. 
Note that, in [5], we also had given a direct proof of this result. □ 

7.2 Strong normalization of S^ AV 

Let T = {F t I i G 1} be a set of types in T and let T° = {F° / i G /} be its 
translation in T. Let « be the congruence generated by T in T and let «° be the 
congruence generated by T° in T. 

Lemma 7.2 L J/ w is good, i/ien so is «°. 

2. IfAtxB, thenA° »° B°. 
Proof 

1. Just note that and are in positive position in {Ai AA2} and {A1VA2} . 

2. By induction on the proof of A w _B. 

□ 



Lemma 7.3 J/T h 5 -Av M : A, tften T° h 5 M o M° : A° . 

Proof By induction on a derivation of T \~s^ AV M : A. □ 

Theorem 7.3 7/w is good, iftera i/ie system <S,3* AV is strongly normalizing. 

Proof Let M G 7W" be a term typable in <Sr AV , then, by lemma 7.3, M° is 
typable in Stt . Since, by lemma 7.2, «° is good, then, by theorems 7.2 and 5.1, 
M° G SN 0fJtpe , thus by lemma 6.6, M G 5 AT. 

□ 

Remark 

Note that, in definition 7.1, it was necessary to define, for X to be positive in a 
conjunction and a disjunction, as being positive in both formulas since, otherwise, 
the previous theorem will not be true as the following examples shows. Let A, B be 
any types. Note that, in particular, X may occur in A and B and thus the negative 
occurrence of X in X — > B is enough to get a non normalizing term. 

• Let F — A A (X — > B) and « be the congruence generated by X « F. Let 
M = Ax.((x7r 2 )x). Then y : A K 5 ^av (M(y,M)) : B and (M(y,M)) ft SN 
since it reduces to itself. 

• Let G = A V (X — > _B) and « be the congruence generated by X w G. Let 
iV = \x{x[y.y,z.{zuj 2 z)]). Then Ks-av (N oj 2 N) : B and (N oj 2 N) £ SAT 
since it reduces to itself. 
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8 Appendix 

Lemma 6.4 Let M e M" . If M>N, then there is P 6 M' such that M° >* w6 P, 
N° >* p P and lg^(M° >* 0flp6 P) > 1. 

Proof We consider only the case of redexes. 

• If (Xx.M N) t> M[x := N], then 

{(Xx.M N)}° = (Xx.M N°) >f3 M°[x := N } = {M[x := N}}°. 

• If ((Mi, M 2 ) iii) > Mi, then 

{((Mi, M 2 ) 7T 4 )}° = /xa.fa (Ax.(x M° M 2 °) Axi.Ax 2 . M7 .(a a*))) 
/ia.( V M7-(« M?)) > p »a.(a M°) > e M°. 

• If (uiM [x 1 .N 1 ,x 2 .N 2 ])>N i [xi := M], then 
{(cOiM [x 1 .N 1 ,x 2 .N 2 })}° = 

fia.(ip (Xx 1 .Xx 2 .(x i M°) Aa;i.^7.(a iVf) Ax 2 .^7.(a iV|))) 

>+ /ia.( V /i7-(a JV?[a;« := AT])) > p /xa.(a JVP^j := M°]) > e iV°[x 4 := M°] 

- {A^ := M]}°. 

• If (M [x 1 .N 1 ,x 2 .N 2 } N)>(M [xi.(Ni N),x 2 .(N 2 N)}), then 
{(M [xi.iVi,x 2 .iV 2 ] iV)} = 

(Ata.(vJ (M° Aari./i7.(a TVf) Ax 2 .M7-(a #2°))) N°) 
> M /za.(p (M° Axi.^ 7 .(a (iVf TV )) Ax 2 .^ 7 .(a (7V 2 ° iV )))) 
= /xa.fa (M° X Xl .^.(a {(JVi TV)} ) Ax 2 . M7 .(a {(iV 2 JV)}°))) 
= {(M [a:i.(JVi JV),a:2.(JV2JV)])} . 

• If (M [anJVi.afc.JVb] Ti) > ( M ir l ),x 2 .(N 2 m)}), then 
{(M [xi.7Vi,x 2 .7V 2 ] ^)}° = 

Ma.( V (/i/?.(¥> (M° \xi.H7.(J3 JVf) Ax 2 . M7 .(/3 JV 2 °))) X yi .\y 2 .^.(a Wi))) 

> M /za.(<p A*/3.(v? (M° Axi.^7.(/3 (iV-j 3 Xy 1 .Xy 2 -^-( a Vi))) 

Xx 2 .fi"/.(f3 (7V 2 ° Xy!.Xy 2 .nj(a Vi)))))) 

> p (Mx.(<p (M° Aa;i.//7.(v3 (ATf Xy 1 .Xy 2 ./j,'y.(a y 4 ))) 

Xx 2 .^.(tp (7V 2 ° Xy 1 .Xy 2 .^-f.(a y l ))))) = P. 

and {(M [zi.(JVi ^),x 2 .(7V 2 7r 4 )])}° = 

(M° Axi^ 7 (/3 //a(<p (JVf XytXyi^a J/i)))) 
Xx 2 hj({3 fj,a(<p (iV 2 ° Xy l Xy 2 ^(a Vi)))))) >+ P. 

• If (M [xiJVi,x 2 ../V 2 ] foi.Li, iftj.L 2 ])> 

(M [zi.(ATi [yi.Li,y 2 .£ 2 ]),x 2 .(iV 2 [1/1.L1, iftj.L 2 ])]), then 
{(M [xi.7Vi,x 2 .7V 2 ] [yi.Li, y 2 .L 2 ])}° = 

/«*.(¥> (m/?.(^ (M° \xi.ny.(P JVf) Xx 2 .^.(p N%))) X yi .^.(a L°) Xy 2 .^.(a L° 2 ))) 

> M Ha.{ip n0.{ip (M° Axi. M7 .(/3 (JVf Ayi ./i 7 .(a LJ) Xy 2 .^.(a L° 2 ))) 

Xx 2 . m .{(3 (N% X Vl . m .{a L°) Ay 2 . M7 .(a L§)))))) 

> p /ia.(y> (M° Aa;i./i7.(vJ (JVf X yi .^.(a L°) Xy 2 .^.(a L° 2 )))) 

Xx 2 .^.{ip (N° Ayi./i7.(a LJ) Xy2.nr (a £§)))) = R 

and {(M [si.(JVi [j/i-ii, ?/ 2 .£ 2 ]), x 2 .(JV 2 [yi.Li, y 2 .i 2 ])])}° = 

A*/9.(v (M° Axi. M 7-(/3 /*a.( V (JVf X yi .^.(a L°) Xy 2 .^.(a L° 2 )))) 

Xx 2 .hj.((3 va.(<p (N° X yi .fjL r (a L°) Xy 2 .^.(a L°)))))) >+ P. 
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If (fia.M N) > /j,a.M[(a L) := (a (L N))}, then 

{(fjux.M N)}° = (pa.M N°) >„ /ia.M°[(« L°) := (a (L° N°))} 

= na.M°[(a L°) := (a {(L N)} )} = {na.M[(a L) := (a (L N))}}° . 

If {fip.M n t ) > v(3.M[(l3 N) := (j3 (N m))}, then 
{{pL(3.M it,)} = /j,a.(<p {pifi.M \x 1 .\x 2 .^/.(a a*))) 

na.(<p n0.M°[(0 N°) := (/3 (N° Xx x .Xx 2 .^{a a*)))]) 
> p na.M [{/3 N°) := (<p (TV Xxi.Xx 2 .^.{a an)))] = P. 
and {fi0.M[{p N) := (/3 (AT tt;))]} = 

l*p.M°[(J3 N°) := (/? pa.fa (iV° Ax!.Ax 2 . M 7.(a a*))))] P. 

If ( M /3.M [a;i.7Vi,a;2.A r 2])>M/3-Mp N) := (/? (N [x 1 .N 1 ,x 2 .N 2 ]))], then 

{(p0.M [x 1 .N ll x 2 .N 2 ])}° = 

fia.(ip {fi(3.M° Xx 1 p 1 .{a ATf) Ax 2 .M7-( Q! ^2))) 

>+ /ia.( V ^.M°[(/3 TV ) := (J3 (N° \ Xl . m .{a JVf) A^.^a 

> p ^a.M°[(/3 iV°) := (A^° A&i.^a ATf) Az 2 .M7-(a! N°)))} = P. 

and {/i/?.M[(/3 N) := (/3 (AT [n.JV, a: 2 JV 2 ]))]}° = 

I10.M°[{0 N°) := (/? M a.(<^ (JV° Axx^.^ iV°) Ax 2 .M7-(« #£))))] ^- 
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